8b6e843482a9249cf62e7a3227a40ea100193ea565a72f7493e508fb619ced01 | Triage

Analysis

max time kernel
10854s
max time network
145s
platform
debian-9_mips
resource
debian9-mipsbe-20221111-en
resource tags

arch:mipsimage:debian9-mipsbe-20221111-enkernel:4.9.0-13-4kc-maltalocale:en-usos:debian-9-mipssystem
submitted
17-03-2023 09:00

Sharing

Report Analysis Logs

General

Target

b9b47eee63fdb5c0b7e505f1aeb59fca.elf
Size

148KB
MD5

b9b47eee63fdb5c0b7e505f1aeb59fca
SHA1

5a96c395fe6dc4544580910670b88eefcbefcb6f
SHA256

8b6e843482a9249cf62e7a3227a40ea100193ea565a72f7493e508fb619ced01
SHA512

5f336d8afb60ed4f10b3c002f276543af9791514364dda35adf1f84a6cea542071192607ef56ed0a94c544fec6530fd9e80d360c7ae160de874e28e6b0dacaae
SSDEEP

1536:mVNs7K797V+nv57gbj6l6T6B6v6N6/6AePe1ebeZe5bwClA2rKQA1dXAQTI/e0hd:vY01ZkXAQT4NU9//ImlWs4zWfOodW

Score

9^/10

Malware Config

Signatures

Modifies the Watchdog daemon 1 TTPs
Malware like Mirai modify the Watchdog to prevent it restarting an infected system.

Impair Defenses
T1562

/tmp/b9b47eee63fdb5c0b7e505f1aeb59fca.elf
/tmp/b9b47eee63fdb5c0b7e505f1aeb59fca.elf
1⤵
PID:332

Network

MITRE ATT&CK Enterprise v6

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Impair Defenses

Credential Access

Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...